api.geofftest2.dpa0.org
Issued by Amazon
About this certificate
This digital certificate with serial number 08:b5:d7:de:d5:81:36:cf:ac:7d:f2:90:8d:ea:75:41 was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=api.geofftest2.dpa0.org
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 08:b5:d7:de:d5:81:36:cf:ac:7d:f2:90:8d:ea:75:41Serial Number (int): 11578008070467511421190813013531850049
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 5d:f1:8b:26:8c:75:a6:bd:c4:7a:d2:42:cd:67:f3:43:c0:4b:43:30
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b7:fe:20:a2:e1:61:55:7d:98:f1:e6:1f:8b:25:87:56:2f:3e:74:84
Fingerprint (sha256): 04:0b:59:b1:71:11:e5:c8:4c:43:03:81:36:f4:b3:08:64:ed:f9:1c:ca:a1:c4:f0:62:41:f3:1c:52:de:e7:ca
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate api.geofftest2.dpa0.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.geofftest2.dpa0.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.geofftest2.dpa0.org
auth.geofftest2.dpa0.org
config.geofftest2.dpa0.org
eventproxy.geofftest2.dpa0.org
history.geofftest2.dpa0.org
kibana-auth.geofftest2.dpa0.org
kibana.geofftest2.dpa0.org
snapshot.geofftest2.dpa0.org
auth.geofftest2.dpa0.org
config.geofftest2.dpa0.org
eventproxy.geofftest2.dpa0.org
history.geofftest2.dpa0.org
kibana-auth.geofftest2.dpa0.org
kibana.geofftest2.dpa0.org
snapshot.geofftest2.dpa0.org
Other certificates including the domain name dpa0.org
(limited to 100 certificates)
storage.dailydeploy.dpa0.org
storage.perf3.dpa0.org
morev01.dpa0.org
api.azdiotest2.dpa0.org
*.dailydeploy.dpa0.org
*.internal.geofftest.dpa0.org
api.perf1.dpa0.org
api.devsandbox.dpa0.org
*.dailydeploy.dpa0.org
dailydeploy.dpa0.org
*.internal.geofftest.dpa0.org
*.dailydeploy.dpa0.org
miwilliams01.dpa0.org
storage.azdiotest2.dpa0.org
storage.devsandbox.dpa0.org
miwilliams01.dpa0.org
storage.geofftest.dpa0.org
azdiotest2.dpa0.org
storage.geofftest.dpa0.org
*.internal.perf1.dpa0.org
api.chkumar.dpa0.org
*.internal.geofftest.dpa0.org
api.miwilliams01.dpa0.org
nbachkethi01.dpa0.org
storage.miwilliams01.dpa0.org
storage.staging.dpa0.org
*.internal.azdiotest2.dpa0.org
miwilliams01.dpa0.org
api.azdiotest2.dpa0.org
*.azdiotest2.dpa0.org
storage.pvk.dpa0.org
morev01.dpa0.org
api.azdiotest.dpa0.org
*.internal.jbackus02.dpa0.org
api.dailydeploy.region.dpa0.org
dailydeploy.dpa0.org
storage.dailydeploy.dpa0.org
api.perf2.dpa0.org
storage.vkumarhc.dpa0.org
api.azdiotest2.dpa0.org
*.internal.jbackus02.dpa0.org
api.perf1.dpa0.org
api.azdiotest.dpa0.org
api.dailydeploy.region.dpa0.org
*.internal.geofftest.dpa0.org
*.internal.morev02.dpa0.org
perf2.dpa0.org
api.pcheung.dpa0.org
api.geofftest2.dpa0.org
*.dailydeploy.dpa0.org
dailydeploy.dpa0.org
*.internal.chkumar.dpa0.org
api.geofftest2.dpa0.org
api.nbachkethi01.dpa0.org
api.perf3.dpa0.org
*.internal.morev01.dpa0.org
api.presandbox.region.dpa0.org
*.perf2.dpa0.org
storage.azdiotest.dpa0.org
*.internal.azdiotest.dpa0.org
*.internal.geofftest.dpa0.org
syslog.perf3.dpa0.org
api.geofftest.dpa0.org
api.chkumar.dpa0.org
syslog.vkumarhc.dpa0.org
api.azdiotest.dpa0.org
storage.perf1.dpa0.org
syslog.vkumarhc.dpa0.org
*.devsandbox.dpa0.org
*.crash.internal.dailydeploy.dpa0.org
api.azdiotest2.dpa0.org
storage.azdiotest.dpa0.org
api.rpanchal.dpa0.org
api.devsandbox.dpa0.org
dailydeploy.dpa0.org
*.crash.internal.chkumar.dpa0.org
storage.vkumarhc.dpa0.org
dailydeploy.dpa0.org
api.geofftest.dpa0.org
azdiotest2.dpa0.org
devsandbox.dpa0.org
automationtesting.dev.dpa0.org
api.jbackus02.dpa0.org
storage.perf2.dpa0.org
*.internal.ap2.dpa0.org
none.azdiotest2.dpa0.org
*.internal.perf3.dpa0.org
api.delta.prototype.dpa0.org
storage.jbackus02.dpa0.org
*.internal.miwilliams01.dpa0.org
*.internal.pvk.dpa0.org
*.dailydeploy.dpa0.org
storage.beta.prototype.dpa0.org
syslog.delta.prototype.dpa0.org
*.internal.jbackus01.dpa0.org
storage.playground.dpa0.org
api.jbackus01.dpa0.org
preprod.dpa0.org
*.internal.pvk.dpa0.org
storage.pvk.dpa0.org
storage.perf3.dpa0.org
morev01.dpa0.org
api.azdiotest2.dpa0.org
*.dailydeploy.dpa0.org
*.internal.geofftest.dpa0.org
api.perf1.dpa0.org
api.devsandbox.dpa0.org
*.dailydeploy.dpa0.org
dailydeploy.dpa0.org
*.internal.geofftest.dpa0.org
*.dailydeploy.dpa0.org
miwilliams01.dpa0.org
storage.azdiotest2.dpa0.org
storage.devsandbox.dpa0.org
miwilliams01.dpa0.org
storage.geofftest.dpa0.org
azdiotest2.dpa0.org
storage.geofftest.dpa0.org
*.internal.perf1.dpa0.org
api.chkumar.dpa0.org
*.internal.geofftest.dpa0.org
api.miwilliams01.dpa0.org
nbachkethi01.dpa0.org
storage.miwilliams01.dpa0.org
storage.staging.dpa0.org
*.internal.azdiotest2.dpa0.org
miwilliams01.dpa0.org
api.azdiotest2.dpa0.org
*.azdiotest2.dpa0.org
storage.pvk.dpa0.org
morev01.dpa0.org
api.azdiotest.dpa0.org
*.internal.jbackus02.dpa0.org
api.dailydeploy.region.dpa0.org
dailydeploy.dpa0.org
storage.dailydeploy.dpa0.org
api.perf2.dpa0.org
storage.vkumarhc.dpa0.org
api.azdiotest2.dpa0.org
*.internal.jbackus02.dpa0.org
api.perf1.dpa0.org
api.azdiotest.dpa0.org
api.dailydeploy.region.dpa0.org
*.internal.geofftest.dpa0.org
*.internal.morev02.dpa0.org
perf2.dpa0.org
api.pcheung.dpa0.org
api.geofftest2.dpa0.org
*.dailydeploy.dpa0.org
dailydeploy.dpa0.org
*.internal.chkumar.dpa0.org
api.geofftest2.dpa0.org
api.nbachkethi01.dpa0.org
api.perf3.dpa0.org
*.internal.morev01.dpa0.org
api.presandbox.region.dpa0.org
*.perf2.dpa0.org
storage.azdiotest.dpa0.org
*.internal.azdiotest.dpa0.org
*.internal.geofftest.dpa0.org
syslog.perf3.dpa0.org
api.geofftest.dpa0.org
api.chkumar.dpa0.org
syslog.vkumarhc.dpa0.org
api.azdiotest.dpa0.org
storage.perf1.dpa0.org
syslog.vkumarhc.dpa0.org
*.devsandbox.dpa0.org
*.crash.internal.dailydeploy.dpa0.org
api.azdiotest2.dpa0.org
storage.azdiotest.dpa0.org
api.rpanchal.dpa0.org
api.devsandbox.dpa0.org
dailydeploy.dpa0.org
*.crash.internal.chkumar.dpa0.org
storage.vkumarhc.dpa0.org
dailydeploy.dpa0.org
api.geofftest.dpa0.org
azdiotest2.dpa0.org
devsandbox.dpa0.org
automationtesting.dev.dpa0.org
api.jbackus02.dpa0.org
storage.perf2.dpa0.org
*.internal.ap2.dpa0.org
none.azdiotest2.dpa0.org
*.internal.perf3.dpa0.org
api.delta.prototype.dpa0.org
storage.jbackus02.dpa0.org
*.internal.miwilliams01.dpa0.org
*.internal.pvk.dpa0.org
*.dailydeploy.dpa0.org
storage.beta.prototype.dpa0.org
syslog.delta.prototype.dpa0.org
*.internal.jbackus01.dpa0.org
storage.playground.dpa0.org
api.jbackus01.dpa0.org
preprod.dpa0.org
*.internal.pvk.dpa0.org
storage.pvk.dpa0.org
Certificate
The complete raw certificate details for api.geofftest2.dpa0.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIQCLXX3tWBNs+sffKQjep1QTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODA4MTQwMDAwMDBaFw0xOTA5MTQx MjAwMDBaMCIxIDAeBgNVBAMTF2FwaS5nZW9mZnRlc3QyLmRwYTAub3JnMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMb3W62UVWvnEO8LVghb+Kjo4SRA I69a3cwfXioPZvbcT3Lfrt+ziITY+KgInlk0ubfnZeQ0USGdPZeH4pDSiSG4V4A2 XYrh52kXhChgDAzPGR+rzj9BEzjlg5wFZHKVKKJIo0slevyvGMTERsz9oGZRdsKH OU1HVodW+81Pdy3cJ+XGzn4VSuh5bh0eNyQ+n3xONkQKTJu6qNScQF9WbEJXfPx8 MMNUVkXv1R8KmYLAo338UbDGYDFvJjvh2TDJBqYcqMASusZKRbH4L6Vk68VC3ia1 J9fQrz/s3o9pxvtTgwBP3P+X5oAEYLO77utyfH7zj/xpwKY0jYCn6lyfsQIDAQAB o4ICYTCCAl0wHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0O BBYEFF3xiyaMdaa9xHrSQs1n80PAS0MwMIHyBgNVHREEgeowgeeCF2FwaS5nZW9m ZnRlc3QyLmRwYTAub3JnghhhdXRoLmdlb2ZmdGVzdDIuZHBhMC5vcmeCGmNvbmZp Zy5nZW9mZnRlc3QyLmRwYTAub3Jngh5ldmVudHByb3h5Lmdlb2ZmdGVzdDIuZHBh MC5vcmeCG2hpc3RvcnkuZ2VvZmZ0ZXN0Mi5kcGEwLm9yZ4Ifa2liYW5hLWF1dGgu Z2VvZmZ0ZXN0Mi5kcGEwLm9yZ4Iaa2liYW5hLmdlb2ZmdGVzdDIuZHBhMC5vcmeC HHNuYXBzaG90Lmdlb2ZmdGVzdDIuZHBhMC5vcmcwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipo dHRwOi8vY3JsLnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0g BBkwFzALBglghkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggr BgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsG AQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5j cnQwDAYDVR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0B AQsFAAOCAQEABxfaxH3+TXN3PWFrYXqKTdOfhTDPjY1wxycN3fuWovUdYUc/VZ/E 9FJSKHEX4rf5TQKjSVODVQUxMJ4WziWnI+Z704M0G//jCfkHSM+faCBnyJm4qhRL jS6Oea6nHSQeYHE4tl2u/X01QXJw23mceSH9Ch7dnz8R6XEFq96fUipPaL32fW/0 zumk2ez4ssWKIMJbnU05o1zalCAGSvQXo1MKL3Hx7oW2y8lw3yWsEBQ2y7cG3PGs N/V2jmP9i90q/wHmytaq+YQcKb9LVoIc0m9I3OXH4uD2HAo3JpmAKRHEdnmME0sD RhwAMXxV5FcBqH9PeQJlKBSmkoyuVNYSgg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMb3W62UVWvnEO8LVghb +Kjo4SRAI69a3cwfXioPZvbcT3Lfrt+ziITY+KgInlk0ubfnZeQ0USGdPZeH4pDS iSG4V4A2XYrh52kXhChgDAzPGR+rzj9BEzjlg5wFZHKVKKJIo0slevyvGMTERsz9 oGZRdsKHOU1HVodW+81Pdy3cJ+XGzn4VSuh5bh0eNyQ+n3xONkQKTJu6qNScQF9W bEJXfPx8MMNUVkXv1R8KmYLAo338UbDGYDFvJjvh2TDJBqYcqMASusZKRbH4L6Vk 68VC3ia1J9fQrz/s3o9pxvtTgwBP3P+X5oAEYLO77utyfH7zj/xpwKY0jYCn6lyf sQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11578008070467511421190813013531850049 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-14 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.geofftest2.dpa0.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21306149145302104813609850135411681604167643274673309258353298047024871003898488991308743155556419482493769766243224098204249713780589131095570840774436336523683421154721001947976242482206465876281761975755034977782334682568505277139744969570517495750482521089794726589857946161017653079319164905244860301042953043177571061824400199635750720763724509926401322629808197952364931097721758532810957294686066992925530918311404146845288296495607368424752273959676174116805812216316094145050496610355403696702204685751630761184318233054007603703253353706977660492123012700304335679215284552200354605120285917503171206094769 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5df18b268c75a6bdc47ad242cd67f343c04b4330 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (234 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auth.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'config.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eventproxy.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'history.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kibana-auth.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kibana.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'snapshot.geofftest2.dpa0.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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